UnitedHealth Questioned On Potential Patient Data Leaked in Cyberattack
As UnitedHealth begins a staged processing of $14B in claims backlog, a lawmaker wants to know exactly which Medicare records and other patient data were compromised in the breach.
UnitedHealth Group (UHG) is facing questions from a lawmaker over the types of patient data, including Medicare records, that were compromised during the February 21 cyberattack at its Change Healthcare unit.
On March 25, Rep. Jamie Raskin (D-MD), ranking member of the House Oversight Committee, sent a letter to UHG head Andrew Witty asking 12 questions about the breach and its impact on patients and others. This latest move follows others from lawmakers seeking to know more about the breach and the response to it from UHG as well as the Health and Human Services agency.
Noting that Change Healthcare reportedly handles medical records for one in three U.S. patients and provides services to others, Raskin highlights in the letter the "significant and far-reaching" consequences of the unit's prolonged outage. He asked for UHG to respond to the letter by April 8.
Sign up for Kiplinger’s Free E-Newsletters
Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.
Profit and prosper with the best of expert advice - straight to your e-mail.
Questions asked include ones about the types of information, including types of personally identifiable information and protected health information, that were compromised in the attack.
UHG is also asked to specify the scope of records from Medicare, Medicaid and Tricare beneficiaries that were compromised.
UHG did not immediately respond to a Kiplinger request for comment.
In a recent website update, UnitedHealth said said it has begun to process its claims backlog and that more than $14 billion in claims should “start flowing soon.” The insurer previously said that about 99% of Change Healthcare’s pharmacy network services were restored on March 7 and its electronic payments were restored on March 15.
Even so, the impact of the breach continues to be felt across the healthcare system, according to a number of healthcare professionals and organizations.
Tricare, which provides prescriptions to military clinics and hospitals worldwide, continues to say on its website that military clinics and hospitals are providing ongoing prescriptions through manual procedures until the Change Healthcare issue is resolved. Tricare also continues to direct beneficiaries to reach out to their specific pharmacy, clinic or hospital for local updates.
Growing data breaches in healthcare
As Raskin noted in his letter, about 725 data breaches were reported within the U.S. healthcare system last year. This is a 162% increase in the last decade, he said.
"The rising number of cyberattacks against the U.S. healthcare system, especially against an actor that holds outsized influence on the market, poses a clear and present threat to national security and public health," the lawmaker said in the letter.
Examples of cyberattacks in the last year resulting in massive data breaches include mail order prescription firm Truepill's data breach that exposed data of 2.3 million patients last November, as well as Medicare's data breach in July that exposed the personal information of more than 600,000 Medicare beneficiaries and millions of other healthcare consumers.
For help during this time, Tricare directs users to check its patient portal for outages for updates and information such as how to refill and check the status of your prescriptions at military pharmacies.
Related Content
Get Kiplinger Today newsletter — free
Profit and prosper with the best of Kiplinger's advice on investing, taxes, retirement, personal finance and much more. Delivered daily. Enter your email in the box and click Sign Me Up.
Joey Solitro is a freelance financial journalist at Kiplinger with more than a decade of experience. A longtime equity analyst, Joey has covered a range of industries for media outlets including The Motley Fool, Seeking Alpha, Market Realist, and TipRanks. Joey holds a bachelor's degree in business administration.
-
An End-of-Year Investing Checklist
December is a great time to get your portfolios in order. Investors can follow this checklist to assess what changes they may or may not need to make.
By Charles Lewis Sizemore, CFA Published
-
Year-End RMDs: Should You Invest, Spend or Donate Them?
Here are 10 ways to use year-end RMDs strategically. The deadline for taking Required Minimum Distributions is December 31. And yes, shopping might be in order.
By Adam Shell Published
-
Year-End RMDs: Should You Invest, Spend or Donate Them?
Here are 10 ways to use year-end RMDs strategically. The deadline for taking Required Minimum Distributions is December 31. And yes, shopping might be in order.
By Adam Shell Published
-
Three 'Yellowstone' Estate Planning Lessons
We can learn a lot from John Dutton's estate planning mistakes. Here are just a few that relate to families in general and family businesses in particular.
By John M. Goralka Published
-
Claim It Early or Delay? When to Start Taking Social Security
Timing is everything when it comes to starting Social Security. Here are the top reasons why people choose to delay or take it early, according to one expert.
By Matt Johnson, CPA, NSSA Published
-
One Simple Tip for Planning the Three Stages of Retirement
Dreading the idea of retirement? This planning technique for the 'go-go, slow-go and no-go years' can lessen the worry and help you save efficiently.
By Joel V. Russo, LUTCF Published
-
Jim Carrey Ran Out of Money in Retirement. Will You?
Cash-strapped retirees are returning to the workforce. How to prevent becoming one of them.
By Donna Fuscaldo Published
-
Crypto in Your Retirement Account? It's Not a Crazy Question
Time was, including crypto in your retirement account seemed far too risky. Some financial experts now recommend it for diversification. But buyer beware.
By Tom Taulli Published
-
Do You Feel Like Somebody’s Watching You? It's Your Car
What's worse, you gave your vehicle manufacturer permission to watch you — no matter what you're doing. What are the car companies doing with that information?
By Karl Susman, CPCU, LUTCF, CIC, CSFP, CFS, CPIA, AAI-M, PLCS Published
-
A Checklist for Retiring in 2025
Navigating the final stretch of your professional career can be daunting. We've compiled a checklist to help you put your best foot forward into retirement.
By Alina Tugend Published